Conditional Access Policies
Access Management is one of the main challenges faced by organizations, especially by those embracing BYOD. Employees tend to access corporate resources from various geographical locations, using multiple devices. Manually validating and verifying authorized users/devices takes a toll on IT administrators. Mobile Device Manager Plus (MDM) aids in automating this process with the help of Conditional Access policies. This ensures only authorized users/devices that comply to specific conditions can access resources, while preventing unauthorized users/devices from accessing them. For this purpose, MDM supports the following policies:
- Conditional Exchange Access
This policy lets you monitor devices accessing your organization's Exchange server. You can configure an access policy and optionally set a grace period for devices violating the policy.
- Office 365 Conditional Access
This policy lets you grant access only to Windows 10 devices enrolled with MDM, while blocking other devices from accessing Office 365/ other apps requiring Azure login. Based on your organization's requirement, you can configure the access policy on the Azure portal.
- Office 365 MAM Policies
This policy lets you apply security configurations to Office 365 apps installed on iOS and Android devices. Configure data protection, access requirements and conditional launch settings for these apps to secure corporate data being accessed from personally-owned devices.
- Conditional Access using Azure Active Directory CBA